Constructing a Key Pair/Certificate Management Environment
14-13
The following certificates are stored in the certificate management file as the root certificates:
− VeriSign/RSA Secure Server CA
− VeriSign Class 1 Public Primary Certification Authority
− VeriSign Class 2 Public Primary Certification Authority
− VeriSign Class 3 Public Primary Certification Authority
− VeriSign Class 1 Public Primary Certification Authority - G2
− VeriSign Class 2 Public Primary Certification Authority - G2
− VeriSign Class 3 Public Primary Certification Authority - G2
− VeriSign Class 4 Public Primary Certification Authority - G2
− SecureSign RootCA1
− SecureSign RootCA2
− SecureSign RootCA3
Registering Certification Authority Certificates
Register the signer of SOAP digital signatures, receiver of SOAP messages encrypted by the XML
encryption, or certificate of the certification authority that issued the site certificate of the SOAP server
that conducts SSL-encrypted communication with the certificate management file. Certificates in the
format containing certification authority certificates only can be registered using the soapMngSecurity
(certificate management) command.
Notes
• The same certification authority certificates must be registered on all servers and clients linked for
the security function of the Web service.
• If the certification authority is an intermediate certification authority, registration of the certificate
must start from the root certification authority.
Example
Register the certification authority certificate with the certificate management file by specifying the alias
(cacert).
soapMngSecurity -import -f certificate_storage_file_name -p Interstage
-alias cacert
Commentaires sur ces manuels